KMWorld 2024 Is Nov. 18-21 in Washington, DC. Register now for Super Early Bird Savings!

Keeper Security’s FedRAMP Authorization catapults its status as a leading security solution provider

Provider of zero-trust, zero-knowledge security cloud services, Keeper Security, Inc., is announcing it received the designation of FedRAMP Authorization at the Moderate Impact Level for its Keeper Security Government Cloud (KSGC). Achieving this authorization comes after a complex series of steps and evaluations, proving Keeper Security’s commitment to developing effective and safe security solutions.

The KSGC password management and security solution is an AWS GovCloud (US) hosted, sensitive data store that keeps up with U.S. government security and compliance requirements. With its recent FedRAMP Authorization, KSGC can provide government agencies with an accredited, human-centric cybersecurity solution for regulated workloads backed by a thorough vetting process from FedRAMP.

"Keeper is proud to bring its password management and cybersecurity platform to FedRAMP Authorized status," said Darren Guccione, CEO and co-founder of Keeper Security. “This authorization demonstrates Keeper’s longstanding—and, some would say, fanatical—commitment to the highest standards of internal security controls and encryption. Keeper is prepared to help federal agencies protect their digital assets against ransomware, data breaches, and other password-related cyberattacks."

FedRAMP Authorization requires extensive implementations of controls from 17 different control families that originate from the National Institute of Standards and Technology Special Publication 800-53; an extraordinarily lengthy process that can take even longer depending on the complexity of the enterprise’s system. Partnering with a federal agency or the Joint Authorization Board (JAB) is a prerequisite for authorization, fulfilled by Keeper Security. The Authorization process also requires system evaluation and assessment by an authorized, independent, third-party auditor before submitting a program for final review, as well as requiring authorization from the FedRAMP Program Management Office.

The FedRAMP Authorization process is a logical succession in the face of government enforcements of security at the executive level. As a result of a White House Executive Order, which demands zero-trust architecture and strong encryption, as well as a memorandum by the Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) which mandates all government agencies to adopt a zero-trust architecture by 2024, KSGC adheres to these mandates by employing strong password policies, removing deprecated requirements to enforce special characters and consistent password rotation, and comparing users against weak and breached data.

“As a FedRAMP Authorized password management and security solution, KSGC will enable Carahsoft and our reseller partners to help federal agencies better secure their sensitive information and protect against password related breaches,” said Steve Jacyna, who leads the Keeper Security team at Carahsoft. “Keeper’s zero-knowledge, zero-trust architecture solves compliance and regulatory enforcement requirements, providing a trusted, reliable solution that meets government needs.”

As an enterprise, Keeper encourages secure collaboration with encrypted record sharing for increased control over files and credentials for system administrators. Valuing security, encryption, and decryption of data is always local on the user’s device, and only the encrypted ciphertext is stored in KSGC, according to the company.

To learn more about this authorization, please visit https://www.keepersecurity.com/

KMWorld Covers
for qualified subscribers
Subscribe Now Current Issue Past Issues